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Abstract—This research paper aims to attach a signature scheme that enables signature generation and signature verification to a 
well-defined cryptosystem. This is a combination of key generation, encryption, signature generation, signature verification, and 
decryption algorithms. The Michael O. Rabin signature scheme uses random padding to validate signatures. Similarly, the proposed 
cryptographic technique uses the same padding system with additional quadratic residue and floor value of quadratic quotient. The only 
difference is that Michael O. Robin's signature can be double or triple in some special cases, but the proposed model uses a four-tuple 
signature system. One ambiguity of the Michael O. Rabin cryptosystem is that it can generate the same ciphertext from different 
plaintexts and multiple plaintexts from a single ciphertext. To solve this issue, | constructed a cryptosystem proposing a mathematical 
solution, namely “A mathematical model for ascertaining the same ciphertext generated from distinct plaintext in the Michael O. Rabin 
cryptosystem.” But that model did not have an authentication mechanism to verify the authenticity of the sender and the message. 
Because it had no signature scheme. The proposed crypto-intensive technique uses a two-time security key by slightly altering the 
Diffie-Hellman key exchange protocol. The proposed cryptographic method gives the sender an advantage in creating a signature using 
the encrypted text. On the other hand, the intended recipient can recover the original plaintext through a signature verification 
mechanism. The initial research initiative was to review different cryptosystem construction techniques and signature schemes, then 
apply those mathematical concepts to construct an effective cryptographic technique. This research starts with an exploratory research 
approach and ends with a computational research method. Data collection methods included a literature review, critical thinking 
strategies, solving various computational math problems, and focus group discussions. The people involved in my research were 
university professors. This research revealed an effective crypto-intensive technique that is secure against man-in-the-middle attacks. 
It is unforgeable, while Rabin’s signature is forgeable in a forgery attack. 


Index Terms—Cryptography, cryptosystem, Diffie-Hellman key-exchange protocol, Signature scheme, Bezout’s Coefficient, Euclidean 
algorithm, Chinese Remainder theorem, Plaintext attack, Forgery attack, Man-in-the-middle attack, Digital Signature. 
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1 INTRODUCTION 


he Rabin signature algorithm is a method of digital sig- 
nature. It was one of the first digital signature schemes 
that related to the hardness of forgery. It is directly con- 
nected to the problem of integer factorization. In the random 
oracle model, it was existensitally unforgeable, assuming the 
integer factorization problem was intractable and closely re- 
lated to the Rabin crptosystem [1]. Since its publication, a 


Digital signatures employ asymmetric cryptography. In 
many instances, they provide a layer of validation and secu- 
rity to messages sent through a non-secure channel. Properly 
implemented, a digital signature gives the receiver reason to 
believe the message was sent by the claimed sender. Digital 
seals and signatures are equivalent to handwritten signatures 


large amount of research was carried out by several research- 
ers on Michael O. Rabin signature scheme [2]. 


A digital signature is a mathematical technique for verifying 
the authenticity of digital messages or documents. Authenti- 
cation means that a valid digital signature gives a recipient 
very strong reason to believe that the message was created by 
a known sender, and integrity ensures that the message was 
not altered in transit. It is a standard element of most crypto- 
graphic protocols and is commonly used for software distri- 
bution, financial transactions, contract management systems, 
and to detect forgery or tampering, especially in the inten- 
tional modification of products. The term tempering refers to 
many forms of sabotage. The term authentification can refer 
to a computer communication protocol. A cryptographic pro- 
tocol is specifically designed for the transfer of authentication 
data between two entities. Data integrity actually refers to the 
maintenance and the assurance of the accuracy and con- 
sistency of data over its entire life-cycle. 
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and stamped seals, but properly implemented digital signa- 
tures are more difficult to forge than the handwritten type. It 
can also provide non-repudiation, meaning that the signer 
cannot successfully claim they did not sign a message while 
also claiming their private key remains secret. Further, some 
non-repudiation schemes offer a time stamp for the digital 
signature, so that even if the private key is exposed, the sig- 
nature is valid. Digitally signed messages can be anything 
representable as a bitstring: Examples include a message sent 
via electronic mail, contracts, or some other cryptographic 
protocol. It typically consists of three algorithms: 


1. The key generation algorithm randomly selects a pri- 
vate key from a set of possible private keys. The al- 
gorithm outputs the private key and a correspond- 
ing public key. 

2. The signing algorithm produces a digital signature. 

3. The signature-verification algorithm claims about the 
message's authenticity. 
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Two main properties are required for digital signature: in the 
beginning, the authenticity of a signature generated from a 
fixed message and fixed private key can be verified by using 
the corresponding public key. In addition to that, it should be 
computationally infeasible to generate a valid signature for a 
party without knowing that party's private key. A digital sig- 
nature is an authentication mechanism that enables the gen- 
erator of the message to attach a code that acts as a signature. 


The Rabin cryptosystem can also be used to create a signature 
by exploiting the inverse mapping. To sign a message(m), the 
signer must solve an equation x* = m mod N and any of the 
four roots(S) can be used to form the signed message (m, S). 
However, if x? = mmod N has no solution, signature cannot 
be constructed directly. To overcome this issue, arandom pad 
U is used until x? = m * UmodN is solvable. And then the 
signature will be triple (m,U,s). The verifier compares s* 

with m * UmodN and accepts the signature as valid when 
these two numbers are equal. 


The encryption mechanism uses quadratic residue to produce 
cipher text. The encryption of a message m € Z *y is pre- 
sented by c = m? mod N, where N = p * q is a product of 
two prime numbers, and decryption is performed by solving 
the equation x? = cmod N,N whichhas four roots. Thus, for 
complete decryption, further information is needed to iden- 
tify message(m) among the roots. It has a vulnerabilityy to 
chosen-plaintext attacksk [3-6]. There is astiming»attack»on 
the modularr exponentiation algorithm [7]. The observer ac- 
tually observes the exponentiation time of the algorithm. An 
attacker can reveal information about a message because the 
execution time depends on the number ones in the’binary rep- 
resentation of the message. 


The decryption was accomplished by computing two square 
roots, Bezout’s coefficient using an extended Euclidean algo- 
rithm and combining them with the Chinese-remainder-the- 
orem. Similarly to the RSA and ElGamal cryptosystems, the 
Michael O. Rabin cryptosystem is described in a ring under 
addition and multiplication modulo composite integers. One 
of the main disadvantages is that it generates four results dur- 
ing decryption, and extra effort is needed to sort out the right 
one out of the four possibilities. Michael O. Rabin's signature 
is vulnerable to a forgery attack. 


The proposed cryptographic method is able to encrypt and 
decrypt messages using a standard symmetric key algorithm 
called the Diffie-Hellman key exchange protocol [8]. The first 
published public-key algorithm appeared in the seminal pa- 
per by Diffie and Hellman that defined public-key cryptog- 
raphy. It is vulnerable to a “man-in-the-middle attack.” A 
number of commercial products employ this key exchange 
technique. The purpose of the algorithm is to enable two us- 
ers to securely exchange a key that can then be used for sub- 
sequent encryption and decryption of messages. The algo- 
rithm itself is limited to the exchange of secret values. The 
Diffie-Hellman algorithm’s effectiveness depends on compu- 
ting discrete logarithms. The algorithm has a number of steps: 
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Global public elements: N is a prime number that can define 
a domain, so-called curve area, or elliptic curve, a is a primi- 
tive root of N such that a<N. 


Key generation for user A: Select private key X, such that 
Xq < N. Calculate the public key Y, = a** mod N. 


Key generation for user B: Select a private key X, such that 
X, < Nand calculate the public key ¥, = a*? mod N. 


Secret key for user A: K = (Y,)** mod N. 
Secret key for user B: K = (Y,)*”mod N. 


Let’s consider a workout example. First of all, the domain size 
N = 353, and its primitive root a = 3. Alice and Bob select 
private keys: A = 97, and B = 233 respectively. Then, each of 
them computes a public key: Alice computes X = 
3°7 mod 353 = 40. Bob computes Y = 3733 mod 353 = 
248. After that, they exchange public keys with each other 
and compute the secret keys in the following way: 

Alice computes K = (Y)4 mod 353 = 24897 mod 353 = 160. 
Bob computes K = (X)® mod 353 = 40233 mod 353 = 160. 


The goal of this research paper is to incorporate a signature 
scheme into my previously developed cryptosystem. To do 
that,.this research paper is going to show a new crypto-inten- 
sive technique based on the Diffie-Hellman key exchange 
protocol, theconcept of modular arithmetic, the floor func- 
tion, the absolute.value calculation, the square root, the quad- 
ratic quatotionet, and the quadratic residue. Moreover, three 
arithmetic operations are used in this cryptosystem: addition, 
multiplication, and division; In addition to that, authentica- 
tion is done through signature generation and signature ver- 
ification systems. 


The encryption is accomplished by hashing the message 
twice: H, = (m? mod K,), H, = |m? + K,|. Signatur is given 
by a four-tuple (H,, Hz, Ry, 7). Inthe signature, the equivalent 
residue(r,) is selected by satisfying the congruence relation 
of an expression H,(H, + G) = H, * H2 * R, (mod K,). A ran- 
dom padd(R,) is selected arbitrarily from a range of num- 
bers, ie., {1,2 ......N} to justify the truthiness of the congru- 
ence relation. The signature is verified by checking the equal- 
ity of the equation r, = H, * H, * R, mod K,. If the left-hand 
side and right-hand side of the equation are eqaul, the verifier 
accepts the signature, and then opens the message using the 
expression (D) = | JH, *K. +H, | . The importance of this re- 
search in a cryptographic context is immense. 


The subsequent roadmap for the article is laid out as follows: 
Section 2 contains a literature review; Section 3 presents the 
author's contribution; Section 4 provides discussion; Section 
5 gives a conclusion; Section 6 gives acknowledgement; and 
the last section gives references as well as the author's biog- 
raphy. 
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2 LITERATURE REVIEW 


The Michael O. Rabin cryptosystem has a great theoretical 
significance in terms of cryptographic context. Normally, a 
cryptosystem is a combination of three algorithms: key gen- 
eration, encryption, and decryption algorithm. As we know, 
the Rabin cryptosystem was the first asymmetric cryptosys- 
tem in public-key cryptography [9]. The Rabin signature 
scheme is one of the first digital signature schemes. Rabin’s 
signature on a message (m) may consist of a single and a pair 
(m, s). However, if there is no solution of an equation x= 
m mod N, the signature cannot be generated directly. To over- 
come this issue, many researchers proposed different ideas. 
To dive into the details, Let’s discuss some preliminaries. 


2.1 Preliminaries 


Assuming that N = p * q be a product of two odd primes p 
and q. Using the generalized Euclidean algorithm to compute 
the greatest common divisor between p and gq € N. 


1. Initialize ry = qandr7, = p. 
2. Compute the following sequence of equations: 
%% = Qit, + 12, where q, is quotient. 
% = Get, + 73, 
Tr-3 = In-2 M-2 + Mr-v 
Tn-2 = In-1 M-1 + TM until there is a step for which 
% = 0, while rp,_, # 0. 
3. The greatest common divisor is equal to %_;. 


From which two integer numbers can be achieved after ex- 
tending the theorem, and that is Bezout's coefficient A,, A, € 
z, such that A;p + A2q = 1, are efficiently computed. Thus, 
setting J, ==A,q and W2 = A,p, so that J, + 2 = 1, it is eas- 
ily verified that , and Wy, satisfy the relations. 


WiW2 = 0 mod N 
Wi = Ji mod N 
2" = yz mod N 


and that W,=1modp, J, =Omodq, and W,=0modp, 
W2 = 1 mod q. According to the Chinese Remainder Theorem 
(CRT), using W, and W, every element a in Zy can be repre- 
sented asa = a,y, + a,i, mod N, where a, € Z, anda, € 
Z, are calculated asa, = a mod p and a, = a mod q. The four 
roots X1,X2,%X3,Xq4 © Zy of x* = C mod N represented as posi- 
tive numbers, are obtained using the CRT from the roots uw, 
Uz EZ, and v,,V2 € Z, of the two equations u, = C mod p 
and v, = C mod q, respectively. The roots u, and u, = p — 
u, have different parities; likewise, v, and v, = q— v,.If pis 
congruent 3 modulo 4, the root ui can be computed in deter- 
ministic polynomialtime as +C P/4 mod Pp, £C *"/4 mod q. 
However, u, can be computed in probabilistic polynomial- 
time using Tonelli’s algorithm [10] once a quadratic non-resi- 
due modulo p is known (this computation is the probabilistic 
part of the algorithm), or using the probabilistic algorithm - 
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Cantor-Zassenhaus algorithm [11, 12, 13] to factor the poly- 
nomial u? — c modulo p. Using the previous notations, the 
four roots can be written as follows: 


X, = u,,+v,W, mod N 
X3 = UW, +v, Wz mod N 
X3 = UW, +v,W, mod N 
X, = U,W,+v,W, mod N 


Lemma: Let N = p * q bea product of two prime numbers, 
and C be a quadratic residue modulo N. The four roots 
X4,Xz,X3,X,4 Of the polynomial x? — C are partitioned into two 
sets X, = {x,,x,} and X, = {x,,x3} such that roots in the 
same set have different parities, ie., x, = 1 + x,mod 2 and 
X2= 1+ x3 mod 2. 


Proof. Since u, and v, have the same parity by assumption, 
x, and x, also have the same parity. The connection between 
xX, and x, is shown by the following chain of equalities: x, = 
UY, + V2 Pr = (p — Uy). + (q — Vi). = —xX, mod N = 

N — x ,because pw, = 0 mod N and qy, = 0 mod N, and x, 
is less than N by assumption, thus —x, mod N = N—x, is pos- 
itive and less than N. A similar chain connects x, and x3 = 
N — x2, because N is odd and thus x, and x, as well as x2 and 
x3 have different parities. Let’s use those ideas to explore the 
Michael O. Rabin Signature Scheme and its subsequent vari- 
eties. 


2.2 Anillustration of Michael O. Rabin Signature 


Firs of all, let’s see an illustration of Rabin Signature scheme. 
Sigining Algorithm: The unique signature (S) is given by the 


S= (@ H (m) + mod qa) p+ (q?- H (m) = mod p) q)modN 


and Verification is done by H (m) = s* mod N, where N is the 
composite number of p * q. The signature can be verified by 
everyone, as N is a public key. A hash function H is collision 
resistant if it is hard to find that hash with the same output. If 
H is a collision resistant hash function, that does not mean 
that no collision exists; simply, they are hard to find. Such as, 
H (m) = mod p = 1andH (m)= mod q = 1. 
The cryptographic hash function is any mathematical equa- 
tion. Message(m) is being hashed (encrypted). The hash value 
1 is generated by using the private keys p and q. The same 
hash value from different hashed inputs is so called collision re- 
sistant. The algorithm works in the following way: A workout 
example. let’s create two prime number p = 7 and q = 11 us- 
ing the prime formation (4k + 3 ), whereas, k = {1,2, .....n}. 
The public key is generated by N = p * q = 77. The Hashed 
message H(m) = 202 mod 77 = 15. The collision-resistant 


hash value will be (sys mod7 =1 and isa mod 11=1 
that is vulnerable to collision attacks, because a collision at- 
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tack on a cryptographic hash tries to find two inputs produc- 
ing the same hash value. The signature is given in the follow- 
ing way: 
AT+1 74+1 
S=((717 715-4 mod 11)7 + (117-2 15 © mod 7) 11) mod 77 
= ((8 * 9 mod 11)7 + (2 * 11 mod 7)11)mod 77 

= (6*7+2%*11) mod77 = 64. So, the signature is unique. 
And then signature verification is done in the following way: 
H(m) =s? mod 77 = 642 mod 77 = 15. Since H(m) = H(i), 
the signature is valid and accepted by the verifier. Now let’s 
see a description of pairing signature algorithm. 


key generation: In most presentations in modern cryptog- 
raphy, the algorithm is simplified by choosing b = 0, where b 
is actually the least prime (basement). The signer (S) chooses 
two prime numbers, p and q, respectively and computes the 
product of them N = p « q, whereas N is declared as a public 
key. 


Signature generation: Signer S picks random padding U to 
sign a message m and calculates H (m) « U mod N. Signer(S) 
then solves the equation X(X + b) = H (m) * Umod N. where 
b is the basement (least prime). If there is no solution, S picks 
up anew pad U and tries again. Otherwise, the signature on 
m is (U, x). 


Signatue Verification: Given a message meand aysignature 
(U,x), the verifier (v) calculates the equality of X(X + 
b) mod N and H(m) * U mod N, where X = H(X). If equality 
is found, the signature is accepted. For example, assume that 
an entity A wants to send secret information (X = 20) to an- 
other entity B using a valid signature. It first hashes the secret 
by m? mod N = 20* mod 77 = 15. Where N is a composite 
number of two secret private keys, moduli p = 7, moduli q = 
11, both prime are Blum prime (4k+3). Public key or modulus 
N=p*q=7*11=77. The Hashed value of 15 will be used 
to generate signatures. 


Signing process: Signer (S) chooses the number U probabilis- 
tically and see that the value of a random oracle modulo N 
matches any quadratic residue modulo N that is X (X + 
b) mod N = m*U modulo N. This process continues until 
both sides of the equation match the hash. 


X(X + b)modN m* U mod N 
= 15(15+ 2) mod 77 = (15+ 17) mod 77 


The equation is solvable, which is why the signature on mes- 
sage(m) is the pair (17, 15). So, it’s clear that Rabin’s signature 
on a message m may consist of a single and a pair (m,S). 
However, if there is x? = m mod N has no solution, this sig- 
nature cannot be directly generated. To overcome this ob- 
struction, a random pad U was proposed by J. Pieprzyk et.al. 
[14], and attempts are repeated until x? = m*U mod N is 
solvable, and thus the signature is the triple (m, U, S). A 
verifier compares m * U mod N with S* and accepts the signa- 
ture as valid when these two numbers are equal. Let’s see 
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other researchers’s findings in this area. Hugh Cowie William 
[15] develop a modification of the Rabin system that allows 
the cryptographer to definitively decide which of the four- 
square roots the original message is. The Rabin-Williams sig- 
nature scheme relies on finding the difficulties in the square 
root. It avoids the fraud vulnerabilities. It does not offer mul- 
tiple signatures in one document. However, scheme requires 
the use of two primes congruent to 3 and 7 modulo 8, respec- 
tively. Additionally, in the Rabin-Williams scheme, a mes- 
sage cannot be signed twice in two different ways. The factor- 
ization otherwise of N might get exposed, otherwise. 


Michele Elia, et al. [16] presented a modification of the H. C. 
William scheme based on the computation of a Jacobi symbol, 
where a deterministic pad is used for calculating non-Blum 
prime and Blum prime when m is QNR, as follows: 


aaclumct beiuses) 

mM, mM, mM, 
fea) ar 
m = (m,, + mp2) mod n 


x? = (my, + mp2) (fit. + fo) = Gam, + fomoy2) 


mod N, where f,m, and f,m, is a quadratic residue modulo p 


and modulo q respectively, Since (“) = (4) ; (=) = (2) 


m m ti Mof- m fk: 

so that (72) = (7) (5) = 1 and (™) = (F) (J) =1 
w=0R? [fp fy). Signed message: (m,u,s), Verification: 
Signer verifies the equality of the equation x? = m * umodN. 
If L.H.S = R.H.S, the signature is considered to be valid for 
message(m). This is deterministically true as x? pre-calcu- 
lated, but probabilistically, there is no such x value for which 
the x? = m*«umod Nis true. 


Evgeny Sidorov et al. [17] described a bug in the implemen- 
tation of Rabin-Williams digital signature in the cryptot+ 
framework, which is a popular cryptographic framework. 
The bug is in the misuse of blinding techniques that are aimed 
at preventing timing attacks on the digital signature system 
implementation. To fix the bugdoors, one need to ensure that 
the value used for blinding is a quadratic residue modulo p 
and q. This condition guarantees that the blinding value will 
be removed at the unblinding step and won't affect the result 
of the signing procedure. Although, authors aimed at im- 
proving the security of the Rabin-Williams signature. They 
eventually made the system completely insecure, as admitted 
by authors themselves. The Rabin-Williams signatures be- 
came more efficient with the state-of-the-art modular-root 
signature system which was far beyond the simple signature 
system introduced by Daniel J. Bernstein [18]. Michele Elia et 
al. [19] described a variant aimed at countering Rabin’s signa- 
ture vulnerability. The detail explanation of the procedure is 
as follows: 


Signed Message: (m, U * R* mod N, S * R? mod N, R* mod N), 
so the signature is a fourtuple where U is the padding factor 
and R is a random number selection, Here S is the x’s value 
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for which the equation x* = m * U mod N is true. It is clearly 
seen that x and U are both unknown numbers that have to be 
chosen by entity A in order to generate a signature. 
Verification process: Compute (S*R)?modN and m*U * 
R? * R* mod N; the signature is valid if and only if the afore- 
said two numbers are equal. Let’s see an example, assuming 
preprocessed values for m/ = 15, U * R? =25 * 3% mod 77 = 
71,5 *R*? =12*3? =108 mod 77 =48 and 34mod77 =4. 
So, the four-tuple signature is (15, 71,48, and 4). The process 
of verification can be described by two-step: in 1* step, com- 
puting (12 * 3°)? mod 77 = (12? * 3°) mod 77 = 25, and in 2"4 
step, computing (15 * 25 * 3? « 3*) mod 77 = 25. Since, coun- 
ter forgery four-tuple signature (15, 71, 48, and 41) verifica- 
tion is successful, the signature is valid and accepted. 


Jaweria Usmani et al. [20] proposed a secure gateway discov- 
ery protocol using the Rabin Signature Scheme in MANET 
that ensures confidentiality in heterogeneous environments. 
The registration process was included to remove the mali- 
cious nodes. This protocol removes the threat of anti-confi- 
dentiality, anti-authentication, and anti-duplication. The effi- 
ciency of this protocol is shown through the AVISPA tool. 
Chaoyang Li et al. [21] proposed an efficient ID-based signa- 
ture scheme based on Rabin’s cryptosystem by using the fork- 
ing lemma theorem. This scheme has a lower exponential op- 
eration. It is secure against existential forgery under adap- 
tively chosen identity and message attacks in the random or- 
acle model. Daniel Bleichenbacher [22] presents a method to 
compress Rabin signature. The rabin signatutes and .com- 
pressed signatures are equally difficult to forge. Compression 
requires a continued fraction expansion and takes time 
O(log(n),). Decompression requires two multiplications and 
an inverse over ZZ/,ZZ , a square root of zz which requires 
time O(log(n)z). 


Based on mathematical analysis of other people's findings in 
various contexts of cryptosystems and signature schemes, my 
research is focusing on attaching a signature scheme to a 
cryptosystem using the mathematical ideas derived from a 
literature review. 


A. AIMS AND OBJECTIVES 


The goal of the research is to construct a signature 
scheme and connect it to my previously built cryp- 
tosystem. And therefore, the following research 
questions are formulated from the research objec- 
tives to conduct this research: 


RESEARCH QUESTIONS 


1. What mathematical function do I need for a sig- 
nature scheme? 

2. How do] incorporate a signature scheme into a 
cryptosystem? 
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3 AUTHOR'S CONTRIBUTION 
3.1 Key generation algorithm: 


fe as Gi ON ee 2 Ee ee aS Se ee, 


K= (¥,)** mod N imo 
= (a* mod N)**mod N |G. & 
= (a*’)*4mod N & ka 
= a*- X4mod N ‘3 o 
= (a**)*” mod N i 5 
= (a**mod N)*"mod N ee 
= (Y,)*?mod N a) 


3.2 Current key (K-) = Ps, + K, whereas P,, | 
is a pre-negotiated symmetric key, and | 
K is an exchange key. 


AyLENDag 


3.3 Encryption technique: 
H, =m? mod K, 
H, = |m? + K;| 
C = (H,,H,), where C = Ciphertext. 
aaa H = Hash messaege 
3.4 Signature generation: 
Signature: (Hy, Hz, Ry, Te) 
H,(H, + G) = H, * H2 * Ry (mod K;) 
where re is an equivalent residue, Rp isa 
Random Pad. 


3.5 Signature verification: 
re = H,*H,*R, modK, 


3.6 Decryption technique: 


D= |/H.«K, +H, | 


4 DISCUSSIONS 


Let's say that an entity A exchanges information with another 
entity B. Both entities A and B should have some privacy. 
Both entities A and B generate a shared secret key using the 
aforementioned key exchange protocol, and then both add an 
additional pre-negotiated secret key to the newly generated 
key, ie., K, = Ps, +K . Alice encrypts the secret information 
with a secret key so that an unauthorized entity cannot guess 
and reveal the real information. When the key exchange is 
complete, Alice hashes the message (H,,) in two ways: H, = 
m? mod K, and H, = |m* + K,| to encrypt the message. Next, 
she picks a random padd (R,) = {1,2 ....n} to sign a message 
(m) and calculates H,, * R, mod K, = H, * H, * Ry mod K,. 
She then solves the congruent relation of the equation 
H,(H,+G) = H,*H,*R, (modulo K,). If there is no solu- 
tion for the first picking random padd, she picks up another 
random padd (R,) until the congruent relation exists. If equal- 
ity is found, she creates a four-tuple signature ( H,,H2, Ry , Te). 
Note that H, is the quadratic residue, Hz is the floor value of 
the quadratic quotient, and R, = {1,2,.........n} is a random 
padd, G is the generator, r, is an equivalent residuum. After 
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that, Alice sends only a four-tuple signature (Hj, Hz, Ry , 7%) for 
a given message (m) to Bob. Afterwards, in the signature ver- 
ification process, Bob verifies the signature depending on the 
equality of the equation r, = (H, * H, * R, ) modulo K,. Later, 
Bob opens the message with the expression (|,/H2 * K, + H,|) 
if and only if the equation r, = (H, * H2 * R,) modulo K, holds 
true; otherwise, rejects. Let’s see an example. Suppose, Alice 
wants send a message (A = 65 ASCII Value) to Bob using a 
valid signature. To do that, first of all, both Alice and Bob gen- 
erate a shared secret key using the Diffie-Hellman key ex- 
change protocol in the following way: 


| =40 =k, Swapping =40=k, 
Kk, = ka + Ds K= kp +'Dsx 
=40+4+17 =40+ 17 


Current key (k,) = exchange key + pre-negotiated key. Alice 
and Bob obtain a new key by mixing the exchange with the 
default key. The default key protects against man-in-the-mid- 
dle attacks because they both exchange their keys publicly. 
Although the eavesdropper may obtain the exchange key, he 
does not have access to the previously discussed key. Alice 
locks the written message using the current key (k,). She then 
signs the encrypted message and sends it to Bob. 


Message encryption process: 

Alice hashes the message A = 65 (ASCII Value) in two ways: 
Hash message (H;) = (65)* mod 57 = 7 

Hash message (H2) = |(65)? + 57] = 74 

Cyphertext (C) = H(m) = (H4, 2). 


Signature generation process: Alice picks one random padd 
(R,) arbitaryliy. Note that the value of R, can be any number, 
ie,R, = {1,2,...... n}. but given condition says that we have to 
choose such a number for which the value of H,(H, + G) mod 
K, and H, * H, * R, mod K, must be equal. i.e, H,(H, + G) = 
H, * H, * R, (mod K,.). For instance, for the random number 
51, the congruence relation holds true. 


This publication is licensed under Creative Commons Attribution CC BY. 


© 7(7+5) = 7*74* 51 (mod 57) & 27 = 27 (modulo 57). 
Let it say equivalent residue r, = 27, Hence, she gernerates 
a four-tuple signature (7, 74, 51, and 27) on message A = 65. 


Signature verification process: Bob verifies Alice’s signature, 
relying on the equality of the following equation: 

Yr = H,*H,*R,mod K, Br = 7*74*51m0d57 

T = 27 27= 27, verified. 


Message opening process: 

Since the signature is valid, Bob unlocks the secret message 

by adding a square root to the expression (Hz * K, + H,) and 

accepting only the absolute value as the desired plaintext. 

Decryption: D = lee *ko+ H,| = |\V74*57+7| = |\V4225| 
= 65 =A (reveal). 


4.1 COMPARISON 


Advantages of the Michael O. Rabin Signature: The signature 
actually contains several interesting features: The signature is 
possible using every pair of primes. Different signatures on 
the same document are different. The verification needs only 
two multiplications, and therefore it is fast enough to be used 
in the authentication protocol. 


Disadvantages of Michael O. Rabin Signature: It is vulnera- 
ble to forgery attacks. It is relatively easy to compute 
S? mod N, choose any message m/ and compute the multipli- 
cative inverse of the m/(hash value of m); compute U/ = S$? « 
m/~*mod N and forge the signature as (m/~1, U/, S) without 
knowing the factorization of N. 


Advantages of MSH Biswas Crypto-intensive technique: The 
signature (H,,H,Rp,7e) is generated by two-step hashed 
message, one random padd, and an equivalent residuum. It 
is sequre against man-in-the-middle and forgery attack. It 
does not rquire computing four roots. It requires less time 
complexity compared to the Michael O. Rabin public key sig- 
nature scheme. The MSH Biswas crypto-intensive technique 
is efficient for solving four-to-one mapping signatures. It can 
efficiently identify each ciphertext separately because modu- 
lar arithmetic sometimes generates the same ciphertext from 
different plaintexts. The proposed signature scheme can ver- 
ify the sender and validate the message through a signature 
verification system. In this system, both authentication and 
integrity components have been successfully deployed. 


5 CONCLUSIONS 


To conclude the investigation into the Rabin cryptosystems 
and signature schemes, the Rabin cryptosystems and Rabin 
signature schemes were analyzed. And then, the purpose of 
the study was completed by incorporating a signature scheme 
into my previously developed cryptosystem. The correctness 
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of the MSH Biswas crypto-intensive was finalized based on 
the mathematical induction method. The ambiguities of 
Rabin cryptosystems and the vulnerability of Rabin signature 
schemes were finalized based on a literature review, findings, 
and a focus group discussion. After conducting this research, 
it was concluded that Rabin signature schemes are vulnerable 
to a forgery attack. The Diffie-Hellman key exchange protocol 
cannot authenticate the participants. But, the proposed 
crypto-enabled technique ensures security by combining an 
exchange key with a pre-negotiated key that is unknown to 
the adversary. The objective of this research has been success- 
fully achieved. 


A. RECOMMENDATION 

Based on the conclusion, some recommendations are 
prepared for researchers: I would like to leave my 
encryption scheme as a challenge for future readers 
and welcome cryptographic researchers to make a 
concrete (single) ciphertext that can uniquely iden- 
tify each quadratic residue generated from different 
inputs. 


B. LIMITATION 
This is a very simple cryptographic concept. This re- 
search work has been done for academic purposes 
only. So, it may not be suitable for professional work. 
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